build(deps-dev): bump esmock from 2.5.1 to 2.5.5

[dependabot[bot]]

Bumps esmock from 2.5.1 to 2.5.5.

Release notes

Sourced from esmock's releases.

support yarn PnP @​koshic

support yarn PnP @​koshic

call resolver with builtin moduleIds

This change affects custom resolvers, which are supported from v2.5.2. Per the spec, resolvers will be called with the builtin moduleIds, such as "node:path" and "fs"

• remove condition to not-call resolver with builtin moduleId

add support for custom resolver

This release adds support for custom using a custom resolver. Specifically, a yarn PnP resolver can be passed to esmock, so that yarn PnP moduleIds can be resolved.

• update resolver to latest version, slightly faster with fewer loops
• add support for resolver configuration option

const modulePnP = await esmock('../src/parent.js', {
  '../src/PnPchild.js' : () => ['a', 'b']
}, null, {
  resolver: pnpapi.resolveRequest
})

lookup export type based on package.json type

This release updates the resolver to improve module resolution. See resolvewithplus tags v2.0.6 and v2.0.7.

Essentially, the resolver is updated to lookup the export type based on package.json type. For example, if package.json type is "module", the "import" definition is resolved, else if package.json type is undefined or "commonjs", the "require" definition is resolved. Previous versions of esmock usually reslved commonjs/require when those were defined and because most packages are published as commonjs, the issues resolved at this release likely did not affect anyone,

• resolve "exports" before "main". The spec says: the "exports" field takes precedence over "main" in supported versions of Node.js. The updated resolver correctly returns "main" before "exports" (older resolver did not).
• use package.json "type" to return "import" or "require". The older resolver did not read package.json type and returned incorrect "require" values for some packages. For example, if this inferno package where changed to use type "module", the older resolver would return "index.js" rather than "index.esm.js"

Changelog

Sourced from esmock's changelog.

changelog

• 2.5.5 Oct.14.2023
  • support yarn PnP @​koshic
• 2.5.4 Oct.13.2023
  • remove condition to not-call resolver with builtin moduleId
• 2.5.3 Oct.12.2023
  • update resolver to latest version, slightly faster with fewer loops
  • add support for resolver configuration option
• 2.5.2 Oct.06.2023
  • update resolver to improve module resolution. See resolvewithplus tags v2.0.6 and v2.0.7.
  • resolve "exports" before "main". The spec says: the "exports" field takes precedence over "main" in supported versions of Node.js. The updated resolver correctly returns "main" before "exports" (older resolver did not).
  • use package.json "type" to return "import" or "require". The older resolver did not read package.json type and returned incorrect "require" values for some packages. For example, if this inferno package where changed to use type "module", the older resolver would return "index.js" rather than "index.esm.js"
• 2.5.1 Sep.13.2023
  • resolve existing ".ts" files, rather than ".js" files, when typescript detected, thanks @​tpluscode
• 2.5.0 Sep.09.2023
  • remove duplicate nextLoad call
  • add support for initialize hook
• 2.4.1 Sep.07.2023
  • detect null AND undefined loader-resolved source defintions
  • restore commented-out test affected by un-caught undefined source definitions
• 2.4.0 Sep.07.2023
  • remove esmockDummy
  • resolve issues affecting node-v20.6
  • remove usage of import.meta.resolve, node-v20.6 meta.resolve is not useful
  • only process 'module' and 'commonjs' at the loader
• 2.3.8 Aug.15.2023
  • reuse moduleid regexp replacing separately created regexps
  • remove esmockIsLoader.js export from esmockLoader.js instead
  • simplify esmockIsLoader, per review @​koshic
• 2.3.7 Aug.15.2023
  • normalize package.json url and reduce loc for loader verification
  • small adjustments reducing lines of code
  • clerical changes to some test folders
• 2.3.6 Aug.07.2023
  • resolve global mocking issues when using mixed esm cjs import trees
• 2.3.4 Jul.30.2023
  • do not error when mocking commonjs global values, found by @​tommy-mitchell
• 2.3.3 Jul.28.2023
  • do not error when processing node hashbang scripts from @​tommy-mitchell
  • add note explaining why tsx does not work
  • pin node 18.16.x to ci test matrix, re node !48948
• 2.3.2 Jul.22.2023
  • restore ava unit-test process at node20 test pipeline
  • investigate problems using tsx from @​tommy-mitchell
  • reported the issue at the tsx project, where tsx fails import moduleIds with query params
• 2.3.1 Jun.01.2023
  • improve README example for mocking global values
  • use the word 'global' in the global values mocking example only, to improve clarity (hopefully)
• 2.3.0 May.31.2023

... (truncated)

Commits

• af69e1f Merge pull request #256 from iambumblehead/increment-version-changelog
• b9ce17a increment version update changelog
• abcead1 Merge pull request #255 from iambumblehead/pnp-resolver
• bc3bf30 fix test on node18
• 0f162ca don't use 't' variable
• 92a1d70 fix formatting
• dfbd5e1 missing newline
• 12324e5 test for PnP resolver
• bc4d0a2 simplify resolver construction
• 48c6d44 fix build script
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)